Intrusion PreventionMS.Office.PowerPoint.Atom.Invalid.Text.Type.Code.Execution
Description
This indicates an attempt to exploit a code execution vulnerability in Microsoft Office PowerPoint.
The vulnerability is caused by an error that occurs when the vulnerable software handles a PowerPoint document with a malformed record. A remote attacker could exploit this vulnerability to execute arbitrary code by sending a specially crafted PowerPoint file.
Affected Products
Microsoft PowerPoint v. X for Mac 0
Microsoft PowerPoint 2004 for Mac 0
Microsoft PowerPoint 2003 SP3
Microsoft PowerPoint 2003 SP2
Microsoft PowerPoint 2003 SP1
Microsoft PowerPoint 2003 0
Microsoft PowerPoint 2002 SP3
Microsoft PowerPoint 2002 SP2
Microsoft PowerPoint 2002 SP1
Microsoft PowerPoint 2002
Microsoft PowerPoint 2000 SP3
Microsoft PowerPoint 2000 SR1
Microsoft PowerPoint 2000 SP2
Microsoft PowerPoint 2000
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Refer to the vendor's web site for suggested workaround.
http://www.microsoft.com/technet/security/Bulletin/ms06-028.mspx
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
Version Updates
| Date | Version | Detail |
|---|---|---|
| 2021-01-11 | 16.995 |
| ID | 17841 |
| Created | Oct 16, 2009 |
| Updated | Jan 08, 2021 |
| Risk |
|
| CVE ID | CVE-2006-0022 |
| Exploit Prediction Score | 36.58% |
| Default Action | drop |
| Active | |
| Affected OS | Windows |
| Affected App | MS_Office |